URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: u-portraits.com
Domain registrar:GoDaddy -
Domain registration date:2015-06-02 22:54:09 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-05-16 11:25:53 UTC
Total malware sites :1
A record(s) observed :4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-04-27 22:24:08 50.6.160.7150-6-160-71.unifiedlayer.comNot listedAS19871 NETWORK-SOLUTIONS-HOSTING- USyes
2023-05-22 19:57:47 50.116.94.57cloud239.hostgator.comNot listedAS31898 ORACLE-BMC-31898- USno
2023-06-08 08:19:10 34.98.99.3030.99.98.34.bc.googleusercontent.comNot listedAS396982 GOOGLE-CLOUD-PLATFORM- USno
2023-05-16 11:25:55 50.116.94.76hunggia.techNot listedAS31898 ORACLE-BMC-31898- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-05-16 11:25:55https://u-portraits.com/ra/?1OfflineBB28 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-05-18 19:32:1951ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4js 
2023-05-18 17:40:14d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fjs  
2023-05-18 16:15:341cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcjs 
2023-05-18 13:49:18fddcd34987bef6b94a8aebcb0a58e189c372cb49cd848843c5def8a0369db772js  
2023-05-18 13:01:32fe38571546fce56178ef24eac652a6bdb02adb17817e8381824c1e1039b5f642js Quakbot
2023-05-18 11:45:2942d74e9be0d442e0bbebc6134157922913abc72510b235bfa67b53092757a2f4js Quakbot
2023-05-18 08:30:41a957652292b9f2b69f858cd1f3221d9c4ae8b165a295b91459fd2bf2eedce715js Quakbot
2023-05-18 08:04:41ff4f21489a82d5367cbd581c4dde86dc238f869b950e07bf20f3928f7e6c7567js Quakbot
2023-05-18 06:18:37a9f2a0cb2e1331cb0fde62a0318a6e4666f4e283157690f3f7a1059aa73b2f71js Quakbot
2023-05-18 06:07:4866a44d6ecc0bff8550c4f8fd93b40851e019bac6297339dd180d268ed9bba451js  
2023-05-18 04:30:22ef903a00f557175fbe1af9263796fbdaad81dc6578e948729821675219196f43js Quakbot
2023-05-18 01:36:21aaa4050b504cc828d80b7057106a778bca86d9e00c674992ba5ee3eddf1db803js Quakbot
2023-05-18 00:45:560b7fccf63d874ff825b5a3e790311b7dd0923c82b142520db78f43a8191e9216js Quakbot
2023-05-17 22:23:4443b5fd987f46196b07b603e95e51b7c7676ad0784f913f1b136dcf29bb46e808js Quakbot
2023-05-17 22:05:2502caaf8685c239c1d2e1a5e8440a7c9b39c4b12921ba12cfce6caf0214ea2df6js Quakbot
2023-05-17 20:13:46a0220d487566d1243b11c30ea5d37349418d84e8f6eb6013e0792aa4b11236c6js Quakbot
2023-05-17 18:26:266d5e3d77360658771bba4d35e8dd94a77d30f33a7c30ab86b66e271b54d2a638js Quakbot
2023-05-17 15:50:0892bcab1aebfd8fc6b8ed37048bab5574189469b98f8152e71b4c41106be5e52ejs Quakbot
2023-05-17 15:14:09c2c29ea19d16a1a70e365c2161d223994c0610958fe527bfcb605ed47c4a4d44js Quakbot
2023-05-17 13:36:43aa49eea2c5b828df4f85742d3d76bc365ee6c18721795dfe567bd8be0b360d61js Quakbot
2023-05-17 11:09:459700f381578e6a7bef1b983c8365ce80903a111ae507a48b82bda18d06383af1js Quakbot
2023-05-17 09:00:013335f4dbda1dee713ece098ee6734c1b0a14c47006acbde381a5a265a8d3b2e5js Quakbot
2023-05-17 07:08:04f0e7f8663bd297095064f1c46200608b61f2df6c7249a5e12aca46806e874245js  
2023-05-17 04:50:14ccd9b3e1dc09afa55a40e8a3f29dbaff089e9c210cf220818920e27c8973c3b4js Quakbot
2023-05-17 04:28:195b40c463c8b88c2c4d6e0121ea979426807569a3a55f87ba5b82ff1fb46feb3fjs Quakbot
2023-05-17 01:24:51877034d485476c719bd61909fee27debc1fc16d309b752a8c8c51ef962c88fffjs Quakbot
2023-05-16 23:18:083e1f299e80e16a762ae3ddcbd158b2a1faf8d8c0ac561190e93aa891b6bd3563js Quakbot
2023-05-16 22:58:43144359f455f59df0c118890ae68c0a8a76ff978f3af1b3e88c598603732bd63cjs Quakbot
2023-05-16 20:51:259a634b6c60816cc98e7e3d53292050f424d66c2ce9b2bfe1315234ddce2026b9js Quakbot
2023-05-16 18:29:58ebf7f25164cd8eb329a23f5e2f8569f41d4836ffcecd75c7c41b654527dc4180js Quakbot
2023-05-16 17:24:2188dc46cfde9747f8d30818b053e1c069364b60b72235c47cbc71873b1d7036f2js Quakbot
2023-05-16 15:33:275f4b5bfa5d01afeb906fd820975137deebdbbe8686ea020ec84a38281befc3e1js  
2023-05-16 14:44:255e0b9060dd6f6cac7db83d80129fd3c50a486165fcfce5b7733bc9767c8ddd1ajs Quakbot
2023-05-16 13:09:47656eceb40eab3233ae9321f70775161f69fc0c33cf07d7035f8ebbc860e2c52ajs Quakbot
2023-05-16 11:25:55ef11021fe53c87c098d203689ab6949bd30bbcf3d47988a4b07ffd1a84e89648js Quakbot